Verifier: IBM SE refactoring

Signed-off-by: Qi Feng Huo <[email protected]>
confidential-containers · Jun 3, 2024 · 3903850 · 3903850
1 parent 70ecb61
commit 3903850
Show file tree

Hide file tree

Showing 5 changed files with 226 additions and 336 deletions.
diff --git a/Cargo.lock b/Cargo.lock
diff --git a/attestation-service/verifier/Cargo.toml b/attestation-service/verifier/Cargo.toml
@@ -13,7 +13,7 @@ az-tdx-vtpm-verifier = [ "az-tdx-vtpm", "openssl", "tdx-verifier" ]
 snp-verifier = [ "asn1-rs", "openssl", "sev", "x509-parser" ]
 csv-verifier = [ "openssl", "csv-rs", "codicon" ]
 cca-verifier = [ "ear", "jsonwebtoken", "veraison-apiclient" ]
-se-verifier = [ "openssl" ]
+se-verifier = [ "openssl", "pv", "serde_with", "tokio/sync" ]
 
 [dependencies]
 anyhow.workspace = true
@@ -34,16 +34,15 @@ hex.workspace = true
 jsonwebkey = "0.3.5"
 jsonwebtoken = { workspace = true, default-features = false, optional = true }
 kbs-types.workspace = true
-lazy_static = "1.4.0"
 log.workspace = true
 openssl = { version = "0.10.55", optional = true }
-pv = { version = "0.10.0", package = "s390_pv" }
+pv = { version = "0.10.0", package = "s390_pv", optional = true }
 scroll = { version = "0.11.0", default-features = false, features = ["derive"], optional = true }
 serde.workspace = true
 serde_json.workspace = true
-serde_with.workspace = true
-serde_yaml = "0.9.0"
+serde_with = { workspace = true, optional = true }
 sev = { version = "3.1.1", features = ["openssl", "snp"], optional = true }
+tokio = { workspace = true, optional = true, default-features = false }
 intel-tee-quote-verification-rs = { git = "https://github.com/intel/SGXDataCenterAttestationPrimitives", tag = "DCAP_1.21", optional = true }
 strum.workspace = true
 veraison-apiclient = { git = "https://github.com/chendave/rust-apiclient", branch = "token", optional = true }

diff --git a/attestation-service/verifier/src/lib.rs b/attestation-service/verifier/src/lib.rs
@@ -112,7 +112,6 @@ pub fn to_verifier(tee: &Tee) -> Result<Box<dyn Verifier + Send + Sync>> {
                 }
             }
         }
-
     }
 }
 
@@ -168,16 +167,13 @@ pub trait Verifier {
     ) -> Result<TeeEvidenceParsedClaim>;
 
     /// Generate the supplemental challenge
-    /// 
+    ///
     /// Some TEE like IBM SE need a `challenge` generated on verifier side
     /// and pass it to attester side. This challenge is used by attester to
     /// generate the evidence
     ///
     /// A optional `tee_parameters` comes from the attester side as the input.
-    async fn generate_supplemental_challenge(
-        &self,
-        _tee_parameters: String,
-    ) -> Result<String> {
+    async fn generate_supplemental_challenge(&self, _tee_parameters: String) -> Result<String> {
         Ok(String::new())
     }
 }